Lighting Solutions HoffmeisterLighting Solutions Hoffmeister

Privacy Policy

Privacy Policy

Privacy Policy


I. Who is the responsible body (“controller” in terms of the GDPR) and how can I contact the data protection officer?

Hoffmeister GmbH, Gewerbering 28-32, 58579 Schalksmühle, mail@hoffmeister.de

You can contact our data protection officer which is JURANDO GmbH (https://www.jurando.de), Dr. Dennis Werner, under datenschutz@hoffmeister.de or by postal letter to our address; in the latter case, please add: “Att. data protection officer”.

 

II. Which are the rights you are entitled to?

You are entitled to the following rights which you can assert against us with respect to the personal data concerning you:

  • Right to information/ access (Art. 15 GDPR),
  • Right to rectification (Art. 16 GDPR),
  • Right to erasure (Art. 17 GDPR),
  • Right to restriction of processing (Art. 18 GDPR),
  • Right to data portability (Art. 20 GDPR),
  • Right to object to the processing (Art. 21 GDPR).

 

In addition, you have the right to lodge a complaint about us with a supervisory authority according to Art. 77 GDPR.

Where you have consented to the processing, you have the right to withdraw the consent at any time; however, the withdrawal of consent will not affect the lawfulness of processing based on the consent before its withdrawal.

 

III. For what purposes do we process personal data and what is the legal basis for the processing?

 

When you visit our website

When you visit our website for mere information purposes, i.e. when you do not register or otherwise transfer or disclose information to us, we only collect those personal data which your browser transfers to us. This includes (to be agreed with the person in charge of your website)

–IP address

–Date and time of access

–Details of the query (specific page accessed)

–Access status/HTTP status code

–Website from which the query is made (so-called “referrer”)

–Operating system and its surface

–Language and version of the browser software.

 

We also store this data including the IP address as log files.

We require this data for technical reasons to be able to display our website, ensure stability and security and optimize our presentation.

The legal basis for this is Art. 6 subs. 1 f) GDPR; our legitimate interest consists in the afore-mentioned purposes.

We erase this data after seven days at the latest. We will only store data beyond that time after the personal data has been erased or anonymized. In the case of IP addresses, anonymization can be procured by appropriate shortening of the IP address.

 

Cookies

We use cookies on our website. Cookies are small text files which are stored on your system and which provide us with certain information.

We use transient and persistent cookies on our website. Transient cookies are deleted automatically when you close the browser. These comprise in particular session cookies. They store a so-called session ID which enables several queries from your browser to be allocated to one and the same session. This enables us to recognize your computer when you visit our website again. The session cookies are deleted when you log out from our website or close the browser. Persistent cookies are deleted automatically after expiry of a pre-defined validity which can vary, depending on the cookie used from time to time. You can delete the cookies at any time in the security settings of your browser.

You can set your browser as you wish, and you may, for instance, refuse to accept third-party cookies or even all cookies. However, please be aware that, if you do so, you might be unable to use all features and functions of this website.

We use cookies to render the use of our website and services offered there more comfortable and optimize user-friendliness. In addition, we use cookies to statistically document how our website is used and to analyse such user behaviour to optimize our website presentation and the services offered there. The cookies enable us, when you access our website again, to realize automatically that you have already visited our website before. These cookies are deleted automatically after a pre-defined period of time.

When you access our website, we show you a cookie information which refers to this Privacy Policy to make you aware that we use cookies. There you can also consent to the use of the cookies.

The legal basis for this is Art. 6 subs. 1 f) GDPR; our legitimate interest consists in the purposes mentioned above. If you consent to the use of cookies, the legal basis is Art. 6 subs. 1 a) GDPR.

 

Datacloud

In our data cloud, our data sheets, light distribution curves and other technical data available at item level can be stored and downloaded all at once. The use is possible without providing personal data. However, we also offer the possibility to create a personalized cover sheet. If you use this function and provide us with personal data, this data will only be used to create the personalised cover sheet and will be deleted afterwards. Personal data is processed on the basis of Art. 6 subs. 1 b) GDPR in order to fulfil the contract for the creation of the cover sheet.

 

Email contact

When you contact us via the email addresses we have indicated for such purpose, we will store the personal data you have transferred to us in order to answer your requests. The information you have provided to us might be stored in a Customer Relationship Management System ("CRM system") or similar software.

In the course of transporting or delivering your e-mail, log data is also generated on a regular basis, which, for example, also contains the IP address of the e-mail server you are using. These log data are necessary for ensuring the proper operation of our e-mail server and also serve as proof of server problems or security incidents.

The legal basis for this is Art. 6 subs. 1 f) GDPR; our legitimate interest consists in the purposes mentioned above. Where the email by which you contact us is aimed at contract conclusion or when you send us an email in the context of an existing contractual relationship, the legal basis is Art. 6 subs. 1 b) GDPR.

The data is deleted after the request has been finally settled unless we are required by law to retain the data or we need the data for contract performance. You can also at any time object to the processing when the processing is based on a legitimate interest.

 

Applicant data

When you transfer your application to us, we will process the transferred data to perform our (pre-) contractual duties in the context of the application procedure. If your application is successful, we further process the data for the purpose of handling and executing the employment relationship.

The legal basis is Art. 6 subs. 1 b) GDPR as well as § 26 of the German Federal Data Protection Act (Bundesdatenschutzgesetz - BDSG). If you voluntarily transfer to us special categories of personal data such as health data or religion, also Art. 9 subs. 2 b) GDPR serves as legal basis.

If your application is not successful, we will delete your data after six months at the latest.

Until that time, the data is stored to answer any possible queries relating to the application procedure and to comply with our documentation duties under the German Equal Treatment Act (Allgemeines Gleichbehandlungsgesetz - AGG). If you withdraw your application, we will delete your data immediately.

 

Google services

This website uses the Google services described in more detail below, which are provided by Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland.

Google's data protection declaration as well as the terms of use and information on the technologies used by Google can be found here: https://policies.google.com/privacy?hl=de.

The information generated as part of the use of the services can be transmitted to a Google server in the USA and stored there.

For the exceptional cases in which personal data are transferred to the USA, Google has submitted to the EU-US Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active

 

Google Analytics

This website uses Google Analytics, a web analysis service that uses cookies (text files that are stored on your computer) to enable an analysis of your use of the website and to constantly improve and make our offer more interesting.

In the event that IP anonymisation is activated on this website, your IP address will be shortened by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area before being transferred to a third country. This website uses Google Analytics with the extension "_anonymizeIp()". This enables us to process IP addresses in a shortened form, thus excluding the possibility of personal references. If the data collected about you contains a personal reference, this is immediately excluded and the personal data is therefore deleted immediately. Only in exceptional cases is the full IP address transferred to a Google server in the USA and shortened there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on the website activities and to provide further services to the website operator in connection with the use of the website and the internet.

 

The IP address transmitted by your browser within the framework of Google Analytics is not combined with other data from Google.

You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. You can also prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plug-in available under the following link: tools.google.com/dlpage/gaoptout.

The legal basis for the use of Google Analytics is Art. 6 subs. 1 f) GDPR. Our legitimate interest arises from optimisation and marketing purposes for which we use the results of Google Analytics. If you have consented to the use of Google Analytics, the legal basis is Art. 6 subs. 1 a) GDPR.

 

Cloudflare SSL, CDN & WAF

Our website uses the services of Cloudflare Inc. (USA) for secure encrypted data transmission on the Internet (SSL), to improve worldwide website performance through the Cloudlflare Content Delivery Network (CDN) and to improve security and protection against hacker attacks through the Cloudflare Web Application Firewall (WAF). It is possible that Cloudflare uses its own cookies to provide these services. With Cloudflare a corresponding GDPR-compliant contract for commissioned data processing exists. More detailed information about GDPR and Cloudflare can be found on the GDPR pages of Cloudflare: www.cloudflare.com/de-de/gdpr/introduction/

 

What is Cloudflare?

A Content Delivery Network (CDN), as provided by Cloudflare, is nothing more than a network of servers connected via the Internet. Cloudflare has distributed such servers all over the world to bring websites faster to your screen. Simply put, Cloudflare makes copies of our website and places them on their own servers. When you visit our website now, a load balancing system ensures that the majority of our website is delivered from the server that can display our website the fastest. The distance of the data transfer to your browser is considerably shortened by a CDN. Thus the content of our website is delivered to you by Cloudflare not only from our hosting server, but from servers all over the world. The use of Cloudflare is especially helpful for users from abroad, because here the page can be delivered from a server nearby. Besides the fast delivery of websites Cloudflare also offers various security services like DDoS protection or the Web Application Firewall.

 

Why we use Cloudflare on our website?

Of course we want to offer you the best possible service with our website. Cloudflare helps us to make our website faster and more secure. Cloudflare offers us web optimizations as well as security services such as DDoS protection and web firewall. This includes a reverse proxy and the content distribution network (CDN). Cloudflare blocks threats and limits abusive bots and crawlers that waste our bandwidth and server resources. By storing our website in local data centers and blocking spam software, Cloudflare allows us to reduce our bandwidth usage by about 60%. Delivering content from a data center near you and some web optimizations performed there reduces the average loading time of a website by about half. According to Cloudflare, the setting "I'm Under Attack Mode" can be used to mitigate further attacks by displaying a JavaScript calculation task that must be solved before a user can access a web page. Overall, this makes our website much more powerful and less susceptible to spam or other attacks.

 

Which data is stored by Cloudflare?

Cloudflare generally only forwards those data that are controlled by website operators. The contents are therefore not determined by Cloudflare, but always by the website operator himself. In addition, Cloudflare may collect certain information about the use of our website and process data that is sent by us or for which Cloudflare has received appropriate instructions. In most cases, cloudflare receives data such as contact information, IP addresses, security fingerprints, DNS protocol data and performance data for web pages derived from browser activity. For example, log data helps cloudflare to detect new threats. So Cloudflare can guarantee a high security protection for our website. Cloudflare processes these data within the framework of the services in compliance with the applicable laws. This naturally includes the General Data Protection Regulation (GDPR).

For security reasons Cloudflare also uses a cookie. The cookie (__cfduid) is used to identify individual users behind a shared IP address and to apply security settings for each individual user. This cookie is very useful, for example, if you use our website from a location where there are a number of infected computers. However, if your computer is trustworthy, we can recognize this by the cookie. So you can surf through our website unhindered, despite infected PCs in the area. It is also important to know that this cookie does not store any personal data. This cookie is essential for the cloudflare security features and cannot be disabled.

 

Cookies from Cloudflare

Cloudflare also works together with third party providers. They may only process personal data under instructions from Cloudflare and in accordance with the privacy policy and other confidentiality and security measures. Cloudflare will not pass on any personal data without our explicit consent.

 

How long and where is the data stored?

Cloudflare stores your information mainly in the USA and the European Economic Area. Cloudflare can transmit and access the above described information from all over the world. In general, Cloudflare stores user-level data for domains in the Free, Pro and Business versions for less than 24 hours.

 

How can I delete my data or prevent data storage?

Cloudflare keeps data logs only as long as necessary and in most cases these data are deleted within 24 hours. Cloudflare also does not store any personal data, such as your IP address. However, there is information that Cloudflare stores indefinitely as part of its permanent logs to improve the overall performance of Cloudflare Resolver and to identify any security risks. You can find out exactly which permanent logs are saved at developers.cloudflare.com/1.1.1.1/commitment-to-privacy/privacy-policy/privacy-policy/. All data that Cloudflare collects (temporary or permanent) will be cleaned from all personal data. All permanent logs are also anonymized by Cloudflare.

Cloudflare will mention in your privacy policy that they are not responsible for the content they receive. For example, if you ask Cloudflare whether they can update or delete your content, Cloudflare always refers to us as the website operator. You can also completely prevent the entire collection and processing of your data by Cloudflare by deactivating the execution of script code in your browser or by including a script blocker in your browser.

Cloudflare is an active participant in the EU-U.S. Privacy Shield Framework which regulates the correct and secure transfer of personal data. You can find more information on www.privacyshield.gov/participant.

 

Disable cookies in the browser

Instructions on how to block cookies in your browser can be found here:

Mozilla Firefox:

support.mozilla.org/de/kb/Cookies-blockieren
 

Google Chrome:

support.google.com/chrome/answer/95647
 

Apple Safari:

www.apple.com/legal/privacy/de-ww/cookies/


Internet Explorer:

windows.microsoft.com/de-de/internet-explorer/delete-manage-cookies
 

Microsoft Edge:

windows.microsoft.com/de-de/windows-10/edge-privacy-faq